CVE-2024-6037 Information

Description

A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows an attacker to create arbitrary folders at any location on the server including the root directory (C: dir). This can lead to uncontrolled resource consumption resulting in resource exhaustion denial of service (DoS) server unavailability and potential data loss or corruption.

Reference

https://huntr.com/bounties/eca6904f-f9fd-40c8-9e85-96f54daf405e